Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home WatchGuard Essentials

WatchGuard Essentials Exam Practice Questions (P. 4)

  • Full Access (75 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #16
Users on the trusted network cannot browse Internet websites. Based on the configuration shown in this image, what could be the problem with this policy configuration? (Select one.)

  1. A
    The default Outgoing policy has been removed and there is no policy to allow DNS traffic.
  2. B
    The HTTP-proxy policy has higher precedence than the HTTPS-proxy policy.
  3. C
    The HTTP-proxy policy is configured for the wrong port.
  4. D
    The HTTP-proxy allows Any-Trusted and Any-Optional to Any-External.

Correct Answer:
A

Question #17
If you disable the Outgoing policy, which policies must you add to allow trusted users to connect to commonly used websites? (Select three.)
  1. A
    HTTP port 80
  2. B
    NAT policy
  3. C
    FTP port 21
  4. D
    HTTPS port 443
  5. E
    DNS port 53

Correct Answer:
ADE
TCP-UDP packet filter -
If you decide to remove the Outgoing policy, you must add a policy for any type of traffic you want to allow through the Firebox. If you remove the Outgoing policy and then decide you want to allow all TCP and UDP connections through the Firebox again, you must add the TCP-UDP packet filter to provide the same function.
This is because the Outgoing policy does not appear in the list of standard policies available from Policy Manager.
Reference: Fireware Basics, Courseware: WatchGuard System Manager 10, page 97

Question #18
How is a proxy policy different from a packet filter policy? (Select two.)
  1. A
    Only a proxy policy examines information in the IP header.
  2. B
    Only a proxy policy uses the IP source, destination, and port to control network traffic.
  3. C
    Only a proxy policy can prevent specific threats without blocking the entire connection.
  4. D
    Only a proxy works at the application, network, and transport layers to examine all connection data.

Correct Answer:
CD
C: Proxies can prevent potential threats from reaching your network without blocking the entire connection.
D: A proxy operates at the application layer, as well as the network and transport layers of a TCP/IP packet, while a packet filter operates only at the network and transport protocol layers.
Incorrect:
Not A: A packet filter examines each packets IP header to control the network traffic into and out of your network.
Reference: Fireware Basics, Courseware: WatchGuard System Manager 10, page 95

Question #19
Which authentication servers can you use with your Firebox? (Select four.)
  1. A
    Active Directory
  2. B
    RADIUS
  3. C
    LDAP
  4. D
    Linux Authentication
  5. E
    Kerberos
  6. F
    TACACS+
  7. G
    Firebox databases

Correct Answer:
ABCG

Question #20
When your users connect to the Authentication Portal page to authenticate, they see a security warning message in their browses, which they must accept before they can authenticate. How can you make sure they do not see this security warning message in their browsers? (Select one.)
  1. A
    Import a custom self-signed certificate or a third-party certificate to your Firebox and import the same certificate to all client computers or web browsers.
  2. B
    Replace the Firebox certificate with the trusted certificate from your web server.
  3. C
    Add the user accounts for your users who use the Authentication Portal to a list of trusted users on your Firebox.
  4. D
    Instruct them to disable security warning message in their preferred browsers.

Correct Answer:
A

Previous Questions Next Questions

All Pages